US2025373597A1PendingUtilityA1

Systems and methods for providing secure access to vehicle systems

54
Assignee: NIO TECHNOLOGY ANHUI CO LTDPriority: May 30, 2024Filed: May 30, 2024Published: Dec 4, 2025
Est. expiryMay 30, 2044(~17.9 yrs left)· nominal 20-yr term from priority
H04L 63/0823H04L 63/0428
54
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

In some embodiments, apparatuses and methods are provided herein useful to allowing a connection to a vehicle. In some implementations, a method comprises receiving, by an authorization server from a remote device, a connection request for the vehicle, verifying, by the authorization server, the connection request, in response to verifying the connection request, generating by the authorization server, an authorization certificate, transmitting, by the authorization server, the authorization certificate, receiving, by the vehicle, the authorization certificate, authenticating, by the vehicle, the authorization certificate, and in response to the authenticating the authorization certificate, activating, by the vehicle, a vehicle communication system.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 . A method for allowing a connection to a vehicle, the method comprising:
 receiving, by an authorization server from a remote device, a connection request for the vehicle;   verifying, by the authorization server, the connection request;   in response to verifying the connection request, generating by the authorization server, an authorization certificate;   transmitting, by the authorization server, the authorization certificate;   receiving, by the vehicle, the authorization certificate;   authenticating, by the vehicle, the authorization certificate; and   in response to the authenticating the authorization certificate, activating, by the vehicle, a vehicle communication system.   
     
     
         2 . The method of  claim 1 , wherein the connection request includes information associated with the connection request, wherein the information associated with the connection request includes a vehicle identifier, a make of the vehicle, a model of the vehicle, a trim of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof. 
     
     
         3 . The method of  claim 2 , further comprising:
 determining, based on the information associated with the connection request, that a scope of connection to the vehicle is inconsistent with the information associated with the connection request; and   in response to the determining that the scope of the connection to the vehicle is inconsistent with the information associated with the connection request, deactivating, by the vehicle, the vehicle communication system.   
     
     
         4 . The method of  claim 1 , further comprising:
 encrypting, by the authorization server, the authorization certificate, wherein the authenticating the authorization certificate includes decrypting the authorization certificate.   
     
     
         5 . The method of  claim 1 , wherein the verifying the connection request includes verifying operational details included in the connection request, the method further comprising:
 in response to the verifying the connection request, including, in the authorization certificate by the authorization server, operational authorizations, wherein the operational authorizations indicate allowed operational roles associated with the connection request.   
     
     
         6 . The method of  claim 5 , further comprising:
 determining that the connection to the vehicle is outside of a scope of the operational authorizations; and   deactivating the vehicle communication system.   
     
     
         7 . The method of  claim 1 , wherein the vehicle communication system is an onboard diagnostic system, and wherein the activating the vehicle communication system comprises activating an onboard diagnostic port of the vehicle. 
     
     
         8 . The method of  claim 1 , further comprising:
 in response to receipt of the connection request for the vehicle, generating an owner prompt by the authorization server;   transmitting, by the authorization server to a user device associated with an owner of the vehicle, the owner prompt;   receiving, from the user device, approval of the owner prompt;   wherein the activating the vehicle communication system is further in response to the approval of the owner prompt.   
     
     
         9 . The method of  claim 8 , wherein the owner prompt includes a vehicle identifier, a make of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof. 
     
     
         10 . The method of  claim 1 , further comprising:
 identifying, by the vehicle based on the authorization certificate, a first vehicle system to which access is required; and   providing access, via the vehicle communication system, to the first vehicle system.   
     
     
         11 . A system for allowing a connection to a vehicle, the system comprising:
 an authorization server, wherein the authorization server is configured to:
 receive, from a remote device, a connection request for the vehicle; 
 verify the connection request; 
 in response to verifying the connection request, generate an authorization certificate; and 
 transmit the authorization certificate; and 
   the vehicle, wherein the vehicle is configured to:
 authenticate the authorization certificate; and 
 in response to authenticating the authorization certificate, activate a vehicle communication system. 
   
     
     
         12 . The system of  claim 11 , wherein the connection request includes information associated with the connection request, wherein the information associated with the connection request includes a vehicle identifier, a make of the vehicle, a model of the vehicle, a trim of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof. 
     
     
         13 . The system of  claim 12 , wherein the duration of access requested is provided to the vehicle, and wherein the vehicle is further configured to:
 determine, based on the information associated with the connection request, that a scope of connection to the vehicle is inconsistent with the information associated with the connection request; and   in response to the determining that the scope of the connection to the vehicle is inconsistent with the information associated with the connection request, deactivate the vehicle communication system.   
     
     
         14 . The system of  claim 11 , wherein the authorization server is further configured to:
 encrypt the authorization certificate, wherein the vehicle authenticates the authorization certificate by decrypting the authorization certificate.   
     
     
         15 . The system of  claim 11 , wherein the authorization server verifies the connection request by verifying operational details included in the connection request, and wherein the authorization server is further configured to:
 in response to verifying the connection request, include, in the authorization certificate, operational authorizations, wherein the operational authorizations indicate allowed operational roles associated with the connection request.   
     
     
         16 . The system of  claim 15 , wherein the authorization server is further configured to:
 determine that the connection to the vehicle is outside of a scope of the operational authorizations; and   deactivate the vehicle communication system.   
     
     
         17 . The system of  claim 11 , wherein the vehicle communication system is an onboard diagnostic system, and wherein the activating the vehicle communication system comprises activating an onboard diagnostic port of the vehicle. 
     
     
         18 . The system of  claim 11 , wherein the authorization server is further configured to:
 in response to receipt of the connection request for the vehicle, generate an owner prompt;   transmit, to a user device associated with an owner of the vehicle, the owner prompt; and   receive, from the user device, approval of the owner prompt;   wherein the vehicle communication system is activated further in response to the approval of the owner prompt.   
     
     
         19 . The system of  claim 18 , wherein the owner prompt includes a vehicle identifier, a make of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof. 
     
     
         20 . The system of  claim 11 , wherein the vehicle is further configured to:
 identify, based on the authorization certificate, a first vehicle system to which access is required; and   provide access, via the vehicle communication system, to the first vehicle system.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.